Last Modified: Jul 12, 2023
Affected Product(s):
BIG-IP APM
Known Affected Versions:
13.1.0, 13.1.0.1, 13.1.0.2, 13.1.0.3, 13.1.0.4, 13.1.0.5, 13.1.0.6, 13.1.0.7, 13.1.0.8, 13.1.1, 13.1.1.2, 13.1.1.3, 13.1.1.4, 13.1.1.5, 13.1.3, 13.1.3.1, 13.1.3.2, 13.1.3.3, 13.1.3.4, 13.1.3.5, 13.1.3.6, 13.1.4, 13.1.4.1, 13.1.5, 13.1.5.1
Fixed In:
14.1.0
Opened: Apr 03, 2018 Severity: 3-Major
TMSH/REST API does not filter Username or Client IP for access-info command. The user gives the input as Username or Client IP; still, the tmsh/rest API output does not filter correctly and produces the entire output.
TMSH and REST API command produces more output.
The user gives Username or Client IP for tmsh "show apm access-info" command expecting the filtering will occur based on that given input.
Client Side script in REST API can ignore the empty session in the output and honor the values only when Client IP presents in case of Username as input. Similarly, the script can ignore the values when Username presents in case of Client IP as input.
Filtering should be based on the given input either Username or Client IP based in TMSH and the corresponding REST output.